• +48 883 675 000
  • rezerwacje.wroclaw@niewidzialnydom.pl
Polityka Prywatności / Regulamin
  • +48 883 675 000
  • rezerwacje.wroclaw@niewidzialnydom.pl
Polityka Prywatności / Regulamin

Privacy Policy

By using the services of Invisible House, you entrust us with your information. This privacy policy is intended to help you understand what data we collect, for what purpose, and how we use it. We therefore encourage you to read the information below.

What data do we process?

We process the data you provide when using our services. This primarily includes the data necessary for providing you with accounts or profiles, such as your email address, as well as data generated while navigating our services—e.g., through cookies. We also process data you upload yourself to services provided by us as part of our hosting. In such cases, our processing is limited to making virtual space available for storing that data. The scope of data processed may vary depending on the service.

Who is the data controller?

The controller of your data is Invisible House Sp. z o. o., based in Toruń, hereinafter referred to as “Invisible House”.

Data Protection Officer

You may contact the Data Protection Officer regarding any matter related to the processing of personal data and exercising your rights in connection with such processing.

Contact details of the Data Protection Officer: rezerwacje@niewidzialnydom.pl

Purposes and legal bases for processing your personal data, and data retention period

Personal data of all individuals using the website (including IP address or other identifiers and information collected via cookies or similar technologies), who are not registered users (i.e., do not hold a profile), is processed by the Controller.

The legal bases for processing your data for particular purposes are as follows:

  1. To provide electronic services, including access to content made available on the website, such as:
    • establishing, modifying, or terminating the service agreement, and fulfilling orders placed by users,
    • processing orders for products offered on the website,
    • handling complaints and processing refunds in the event of order withdrawal (product return),
    • Legal basis: Art. 6(1)(b) GDPR – necessity for the performance of a contract with the user.
  2. Statistical analysis, marketing (including profiling), and analysis for the promotion of the Controller’s products and services.
    • Legal basis: Art. 6(1)(f) GDPR – legitimate interest of the controller.
    • Retention period: until an effective objection is submitted.
  3. Marketing, including profiling and analysis, relating to third-party products and services.
    • Legal basis: Art. 6(1)(a) GDPR – voluntary consent.
    • Retention period: until consent is withdrawn.
    • If a user provides personal data of other individuals (such as name, address, phone number, or email), they may do so only in compliance with applicable law and without infringing on those individuals’ personal rights.
  4. Personal data retention period
    • Data processed to perform a contract will be retained until any related claims expire or legal obligations (e.g. regarding accounting or financial documentation) no longer apply.

Is it mandatory to provide personal data?

Providing personal data is voluntary. However, failure to provide data marked as required for the provision of services will prevent us from delivering them.

Who may receive your personal data?

Your data may be shared with entities processing data on behalf of the controller, such as IT service providers, marketing agencies, etc. These entities process data under agreements with the controller and only according to the controller’s instructions. Your data may also be disclosed to authorities legally authorised to request it, e.g., law enforcement agencies as part of criminal or civil proceedings. In some cases, data may be transferred to third countries (outside the EEA) if necessary for service provision or based on another valid legal basis.

What rights do you have regarding your personal data?

  • Right to access your data, including obtaining a copy
  • Right to request rectification
  • Right to deletion (in specific cases)
  • Right to lodge a complaint with a data protection authority
  • Right to restrict processing

If your data is processed based on consent or to provide services, you also have the following rights:

  • Right to data portability – to receive your data in a commonly used machine-readable format and transmit it to another controller.

To exercise these rights, please contact the data controller or the Data Protection Officer.

Cookies and similar technologies

Cookies and similar technologies are placed on your device (computer, laptop, smartphone, etc.) by Invisible House Sp. z o.o. and its partners (e.g. IT service providers, analytics partners, app developers, advertising agencies).

Cookies are text files containing information stored on your device. They typically include the domain name, storage duration, and a unique identifier. Cookies do not identify users personally and do not reveal their identity.

A website can store cookies in your browser if allowed. The browser only permits access to cookies from the website that placed them, not from other websites.

We use cookies to:

  • provide services,
  • customise content and improve usability,
  • create statistics on how users interact with the website,
  • maintain sessions after login so you don’t have to re-enter your credentials on each page,
  • deliver personalised ads and prevent the same ads from repeatedly appearing.

We use two main types of cookies depending on their lifespan:

  • Session cookies – temporarily stored until logout, site exit, or browser closure,
  • Persistent cookies – stored for a specific time or until manually deleted.

By purpose, we use the following types:

  • Essential – required for using services and applications,
  • Security – used to detect abuse in authentication,
  • Performance – collect data on how the website and apps are used,
  • Functionality – remember user preferences (e.g., language, region, font size),
  • Advertising – deliver more relevant ads based on your interests,
  • Statistics – used for website and app analytics.

Other technologies

We also use Local Storage (LS) technology, which works similarly to cookies but stores data differently. LS is a browser memory area used to store data saved by websites. It is accessible only by the same domain and is not sent with every server request. Data in LS is stored long-term and does not expire automatically. We emphasise that we do not use LS to track or identify users, but solely to enhance user experience. We use LS to remember settings.

Browser settings management

By default, web browsers allow cookies and similar technologies. However, users may change these settings at any time. If settings are not changed, cookies and similar data may be stored on your device and accessed by us. Most browsers provide cookie management tools.

Personal data retention period

The retention period depends on the service and purpose of processing. Generally, data is processed for the duration of service provision or order fulfilment, until:

  1. the contract ends,
  2. consent is withdrawn (if processing was based on consent),
  3. an effective objection to processing is raised (if based on legitimate interest).

The period may be extended if processing is necessary to establish or defend against legal claims, and later only if required by law. Once the retention period ends, data is permanently deleted or anonymised.

Personal data security

The controller ensures data security through appropriate technical and organisational measures to prevent unauthorised processing, accidental loss, destruction, or damage. Furthermore, the controller ensures that personal data is:

  • accurate and processed lawfully,
  • collected for specific purposes and not further processed in a way incompatible with those purposes,
  • adequate, relevant, and not excessive,
  • kept accurate and up to date,
  • not retained longer than necessary,
  • securely stored and not transferred outside the EEA without appropriate safeguards.

Contact details

You can contact the data controller via email at rezerwacje@niewidzialnydom.pl

The controller has appointed a Data Protection Officer who can be contacted via email at rezerwacje@niewidzialnydom.pl in any matter related to personal data processing.

Wrocław, ul. Wita Stwosza 12/2a
Telefon: +48 883 675 000

Pokaż na mapie
Facebook Instagram
niewidzialny dom © 2025